Cloud Security Architect

We're looking for a Cloud Security Engineer to join Security Architecture function in the banking sector. The team is responsible for strategic security across the organization - setting standards, designing security architecture, and implementing technical guardrails that protect critical processes, data, and services. This role offers exposure to real-world threats in a regulated, high-security environment. The successful candidate will work closely with IT and Security teams to translate risk analysis into practical technical requirements and implementations. Responsibilities: • Design and implement secure architecture patterns and security standards for cloud and hybrid environments. • Assess threats and technical risks related to cloud implementations (e.g., Azure, third-party SaaS). • Perform gap analysis, risk assessments, and compliance reviews for services spanning on-premise and cloud, including regulatory considerations. • Support business and technology initiatives that involve integrating on-prem services with cloud services. • Support implementation of cloud security controls across identity, governance, and infrastructure, including solutions from the Microsoft Defender ecosystem. • Threat modeling and security recommendations for expanding an Azure Landing Zone and multi-cloud security stack. • Security assessments for projects integrating PaaS / IaaS / SaaS (including third-party SaaS) / IDaaS with on-premise systems, including secure architecture recommendations aligned with both local and cloud security tooling. Requirements: • 5+ years of experience in cybersecurity, including at least 2 years in a cloud environment • Hands-on experience with Azure cloud security • Strong understanding of cloud security concepts, threats, and best practices • Ability to assess risks and vulnerabilities in cloud projects and propose practical mitigations • Knowledge of industry standards and frameworks related to cloud security Nice to have • Experience in the financial sector. • Certifications such as CCSK, CCSP, CompTIA Security+/Cloud+, OSCP